| 제목 | SUL1SS_shop Order.php keyword parameter SQLi |
|---|
| 설명 | The SUL1SS_shop system is a store application developed based on the ThinkPHP5 framework.
The Order page query function in the background of this system has a SQL Boolean blind injection caused by a keyword parameter (login to the system is required),
(https://github.com/617746883/thinkphp5.0_shop)
Operations on keyword parameters cause SQL injection vulnerabilities,
Will cause some unknown hazards.
Authenticate with sqlmap (requires login for cookies to work)
Specific content (utilization examples) need to view the link |
|---|
| 원천 | ⚠️ https://tib36.github.io/2023/03/04/SUL1SS-shop-SQLi/ |
|---|
| 사용자 | nokali (UID 42250) |
|---|
| 제출 | 2023. 03. 04. PM 02:21 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 03. 08. PM 07:00 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 222599 [SUL1SS_shop Order.php keyword SQL 주입] |
|---|
| 포인트들 | 20 |
|---|